Single Sign-On Overview
Identity allows connecting customers' users directories as an identity provider (IDP) and can be referred to as the "Identity Federation." When the federation is configured, the Identity delegates authentication and authorization of the end-users to the federated IDP; hence, our customers gain control over what employees can have access to the Ansarada Platform.
The following diagram demonstrates the simplified authorization flow (login) when identity federation is used (authorization protocol-specific details are omitted for brevity):
The following diagram demonstrates the simplified Ansarada platform invitation flow when identity federation is used (authorization protocol-specific details are omitted for brevity):
Single Sign-On Setup
Contact Ansarada support and request to set up SSO. Ansarada support will guide throughout the process.
You will be requested to send Ansarada the following information which will help us to set up your SSO configurations on Ansarada platform.
Once your SSO account will be set up on Ansarada side (following the information that you will send us as part of step 2), we will provide information about what the Ansarada platform expects to receive as a result of successful authorization (Assertion Consumer Service URL and EntityID).
Please send us your SAML token mapping information.
The table below provides information about what the Ansarada Platform expects to receive as a result of successful authorization:
Once Steps 1 to 4 are done, we can schedule a testing session to make sure SSO was configured properly and go live. We suggest you set up a test email domain for testing purposes. For example, @test.awesomecorp.com